SSL_new() may potentially add a certfificate. Therefore, wen

duplicating the certificate that is in the original SSL, remove the one that SSL_new() provided, if any. Spotted by: Mike Zeoli <zeoli@roguewave.com>

SSL_new() may potentially add a certfificate. Therefore, wen
duplicating the certificate that is in the original SSL, remove the one that SSL_new() provided, if any. Spotted by: Mike Zeoli <zeoli@roguewave.com>
34d69d3b · Richard Levitte · daea0ff8 · 34d69d3b
隐藏空白更改
内联并排

Showing with 4 addition and 0 deletion

ssl/ssl_lib.c ssl/ssl_lib.c +4 -0

未找到文件。
--- a/ssl/ssl_lib.c
+++ b/ssl/ssl_lib.c
@@ -1718,6 +1718,10 @@ SSL *SSL_dup(SSL *s)

 		if (s->cert != NULL)
 			{
+			if (ret->cert != NULL)
+				{
+				ssl_cert_free(ret->cert);
+				}
 			ret->cert = ssl_cert_dup(s->cert);
 			if (ret->cert == NULL)
 				goto err;